Skip to content
Permalink
96f415e4a4
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Go to file
 
 
Cannot retrieve contributors at this time
127 lines (122 sloc) 4.92 KB
version: '3.7'
services:
database:
image: mariadb:10.4.18
volumes:
- /srv/docker/var/lib/mysql:/var/lib/mysql
environment:
- MYSQL_ROOT_PASSWORD_FILE=/run/secrets/mysql_root_password
- MYSQL_DATABASE=registry
- MYSQL_USER=registry_user
- MYSQL_PASSWORD_FILE=/run/secrets/mysql_registry_user_password
secrets:
- mysql_root_password
- mysql_registry_user_password
deploy:
replicas: 1
logging:
driver: journald
options:
tag: "mariadb-{{.Name}}"
registry:
image: i2incommon/comanage-registry:3.3.4-20210712
volumes:
- /srv/docker/srv/comanage-registry/local:/srv/comanage-registry/local
- /srv/docker/etc/shibboleth/shibboleth2.xml:/etc/shibboleth/shibboleth2.xml
- /srv/docker/etc/shibboleth/attribute-map.xml:/etc/shibboleth/attribute-map.xml
- /srv/docker/etc/shibboleth/idp-metadata.xml:/etc/shibboleth/idp-metadata.xml
- /srv/docker/etc/httpd/conf.d/000-comanage.conf:/etc/httpd/conf.d/000-comanage.conf
environment:
- COMANAGE_REGISTRY_ADMIN_GIVEN_NAME=
- COMANAGE_REGISTRY_ADMIN_FAMILY_NAME=
- COMANAGE_REGISTRY_ADMIN_USERNAME=
- COMANAGE_REGISTRY_DATASOURCE=Database/Mysql
- COMANAGE_REGISTRY_DATABASE=registry
- COMANAGE_REGISTRY_DATABASE_HOST=database
- COMANAGE_REGISTRY_DATABASE_USER=registry_user
- COMANAGE_REGISTRY_DATABASE_USER_PASSWORD_FILE=/run/secrets/mysql_registry_user_password
- COMANAGE_REGISTRY_EMAIL_TRANSPORT=Smtp
- COMANAGE_REGISTRY_EMAIL_HOST=tls://smtp.gmail.com
- COMANAGE_REGISTRY_EMAIL_PORT=465
- COMANAGE_REGISTRY_EMAIL_ACCOUNT=comanagetraining@gmail.com
- COMANAGE_REGISTRY_EMAIL_ACCOUNT_PASSWORD_FILE=/run/secrets/comanage_registry_email_account_password
- COMANAGE_REGISTRY_EMAIL_FROM_EMAIL=comanagetraining@gmail.com
- COMANAGE_REGISTRY_EMAIL_FROM_NAME=Registry
- COMANAGE_REGISTRY_ENABLE_PLUGIN=FileSource
- SHIBBOLETH_SP_ENCRYPT_CERT=/run/secrets/shibboleth_sp_encrypt_cert
- SHIBBOLETH_SP_ENCRYPT_PRIVKEY=/run/secrets/shibboleth_sp_encrypt_privkey
- SHIBBOLETH_SP_SIGNING_CERT=/run/secrets/shibboleth_sp_signing_cert
- SHIBBOLETH_SP_SIGNING_PRIVKEY=/run/secrets/shibboleth_sp_signing_privkey
secrets:
- mysql_registry_user_password
- comanage_registry_email_account_password
- shibboleth_sp_encrypt_cert
- shibboleth_sp_encrypt_privkey
- shibboleth_sp_signing_cert
- shibboleth_sp_signing_privkey
ports:
- "80:80"
deploy:
replicas: 1
logging:
driver: journald
options:
tag: "registry_{{.Name}}"
cron:
image: i2incommon/comanage-registry-cron:3.3.4-20210712
volumes:
- /srv/docker/srv/comanage-registry/local:/srv/comanage-registry/local
environment:
- COMANAGE_REGISTRY_NO_DATABASE_CONFIG=1
- COMANAGE_REGISTRY_NO_EMAIL_CONFIG=1
deploy:
replicas: 1
logging:
driver: journald
options:
tag: "cron_{{.Name}}"
ldap:
image: sphericalcowgroup/comanage-registry-slapd:5
command: ["slapd", "-d", "256", "-h", "ldapi:/// ldap:///", "-u", "openldap", "-g", "openldap"]
volumes:
- /srv/docker/var/lib/ldap:/var/lib/ldap
- /srv/docker/etc/ldap/slapd.d:/etc/ldap/slapd.d
- /srv/docker/ldif/config-always-all-olcAccess.ldif:/ldif/config/olcAccess.ldif
- /srv/docker/ldif/config-always-01.ldif:/ldif/admin/01.ldif
environment:
- OLC_ROOT_PW_FILE=/run/secrets/olc_root_pw
- OLC_SUFFIX=dc=comanage,dc=incommon,dc=training
- OLC_ROOT_DN=cn=admin,dc=comanage,dc=incommon,dc=training
- OLC_ROOT_DN_PASSWORD_FILE=/run/secrets/olc_root_dn_password
secrets:
- olc_root_pw
- olc_root_dn_password
ports:
- "389:389"
deploy:
replicas: 1
logging:
driver: journald
options:
tag: "ldap_{{.Name}}"
secrets:
comanage_registry_email_account_password:
external: true
mysql_registry_user_password:
external: true
mysql_registry_user_password:
external: true
mysql_root_password:
external: true
olc_root_pw:
external: true
olc_root_dn_password:
external: true
shibboleth_sp_encrypt_cert:
external: true
shibboleth_sp_encrypt_privkey:
external: true
shibboleth_sp_signing_cert:
external: true
shibboleth_sp_signing_privkey:
external: true